SMSS.EXE – Trojan Generic

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

SMSS.EXE – Trojan Generic removal

FileMD5Virus Alias
SMSS.EXE 04284ff7f21726dc79e16dadc5895a74 Trojan Generic
SMSS.EXE 04284ff7f21726dc79e16dadc5895a74 Trojan PAM
SMSS.EXE 04284ff7f21726dc79e16dadc5895a74 Trojan Agent
SMSS.EXE 04284ff7f21726dc79e16dadc5895a74 Trojan Scar

SMSS.EXE size: 49152 bytes
SMSS.EXE hash: 04284FF7F21726DC79E16DADC5895A74

Created files:

%WinDir%\system\smss.exe
%SysDir%\nvsvcd.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\.nvsvc: %WinDir%\System\smss.exe /w
HKLM\System\CurrentControlSet\Services\Windows Log\Type: 10000000
HKLM\System\CurrentControlSet\Services\Windows Log\Start: 02000000
HKLM\System\CurrentControlSet\Services\Windows Log\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\Windows Log\DisplayName: Windows Log
HKLM\System\CurrentControlSet\Services\Windows Log\ImagePath: %WinDir%\System32\nvsvcd.exe
HKLM\System\CurrentControlSet\Services\wuauserv\Start: 04000000

Detected by UnHackMe:

SMSS.EXE
Default location: %WinDir%\SYSTEM\SMSS.EXE

Dropper information:
MD5: 04284ff7f21726dc79e16dadc5895a74
File size: 49152 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images